CVE-2016-4074

Опубликовано: 06 мая 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.8

CVSS3: 7.5

Описание

The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.

Релиз	Статус	Примечание
artful	not-affected
bionic	not-affected
cosmic	not-affected
devel	not-affected
disco	not-affected
eoan	not-affected
esm-apps/bionic	not-affected
esm-apps/xenial	released	1.5+dfsg-1ubuntu0.1+esm2
esm-infra-legacy/trusty	not-affected	1.3-1ubuntu1.1+esm3
esm-infra/focal	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 83%

0.01997

Низкий

7.8 High

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2016-4074

redhat

около 9 лет назад

The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.

CVE-2016-4074

CVSS3: 7.5

nvd

около 9 лет назад

The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.

CVE-2016-4074

CVSS3: 7.5

msrc

почти 5 лет назад

Описание отсутствует

CVE-2016-4074

CVSS3: 7.5

debian

около 9 лет назад

The jv_dump_term function in jq 1.5 allows remote attackers to cause a ...

GHSA-63w9-2p7c-mwwp

CVSS3: 7.5

github

около 3 лет назад

The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.

EPSS

Процентиль: 83%

0.01997

Низкий

7.8 High

CVSS2

7.5 High

CVSS3

CVE-2016-4074

Описание

Пакет jq

Ссылки на источники

Связанные уязвимости